Law: Data Protection Act (DSG) of 4 October 2018 (only available in German here), Data Protection Ordinance (DSV) of 11 December 2018 (only available in German here) and the General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR)

Regulator: Liechtensteiner data protection authority (DSS)

Summary: Liechtenstein implemented the GDPR in 2018 through the Data Protection Act of October 4, 2018 (only available in German here) (DSG) and the Data Protection Ordinance of December 11, 2018 (only available in German here) (DSV), which both came into effect on January 9, 2019. This was after the EEA Joint Committee adopted, Decision No. 154/2018, (here) incorporating the GDPR into the EEA Agreement, making the GDPR directly applicable in Liechtenstein. The DSG does not contain major derogations from the GDPR and detail legal bases for processing, data subject rights, and requirements for data transfers. Additionally, the DSG and DSV are closely aligned with the German Federal Data Protection Act of June 30, 2017 (BDSG). The DSS has published guidance on international data transfers and adequacy, and the application of European cases concerning cookies in Liechtenstein.